NIST SP800-85A-1：PIV组件测试指南

需积分: 9 120 浏览量更新于2024-07-16 收藏 1.21MB PDF 举报

"NIST SP800-85A-1.pdf" 是一份关于智能卡应用和中间件接口测试的指南，旨在验证遵循NIST SP 800-73-2规范的PIV（Personal Identity Verification）组件的兼容性。这份文档特别关注的是PIV中间件和PIV卡应用程序，确保它们符合FIPS 201（Federal Information Processing Standards）的要求，以实现HSPD-12（ Homeland Security Presidential Directive 12）的安全互操作性目标。 NIST SP 800系列是美国国家标准与技术研究所（NIST）发布的一系列关于信息技术安全的特别出版物，其中SP 800-85A-1专门针对PIV卡应用和中间件的测试需求和断言。这份文档提供了测试用例，用于验证产品是否满足NIST SP 800-73-2中定义的标准。这些标准是为了实现FIPS 201所设定的互操作性目标而设计的。通过这些测试，可以确保通过测试的PIV中间件和PIV卡应用具有互操作性，从而促进符合FIPS 201的产品在市场上的推广和采购，以满足HSPD-12的身份管理要求。 HSPD-12是美国政府的一项政策，要求联邦政府雇员和承包商使用符合特定安全标准的身份证件，以提高身份认证和访问管理的安全性。FIPS 201则是这一政策的技术实施标准，规定了个人身份验证系统的设计、实施和操作要求。 NIST SP 800-73-2是PIV组件互操作性的技术规范，包括了PIV卡应用和中间件的接口细节，如数据交换格式、认证协议和数据安全机制等。这份文档中的测试指南不仅提供了验证组件是否符合这些规范的方法，还帮助开发人员和测试工程师理解如何确保他们的解决方案能够顺利地与其他符合相同标准的系统协同工作。文档的作者来自NIST的信息技术实验室（Information Technology Laboratory, ITL），该实验室致力于通过提供测量和标准的技术领导来推动美国经济和社会福利。ITL通过开发测试、方法、参考数据和技术分析来促进信息技术的发展和有效使用。 NIST SP800-85A-1是一个关键的资源，它为政府、企业和承包商提供了确保其PIV系统符合互操作性和安全标准的测试框架，对于实现HSPD-12政策的目标至关重要。这份文档详细阐述了测试要求和步骤，对于那些希望确保其PIV组件符合NIST标准的组织来说，是一个必不可少的参考工具。

Special Publication 800-85A-1 PIV Card Application & Middleware Interface Test Guidelines

3.2 PIV Card Application Tests

PIV card application tests cover the following:

+ The PIV card application card command interface as per Part 2 of SP 800-73-2, including

the security conditions for executing each command in the interface as well as the

security conditions for accessing and storing each of the associated data objects.

+ Presence of all mandatory data objects as well as accessibility and storage of all

implemented data objects using the identifiers specified in Part 1 of SP 800-73-2.

The tests are performed through test scripts communicating directly with a PIV Card through the

API of the driver that comes with the card reader.

3.2.1 PIV Card Application Card Command Interface Tests

These tests will validate that the card under test can successfully execute the commands in the

PIV card command interface. Successful execution constitutes the card responding with

appropriate data and response status codes to the commands sent by the test system. It also

involves setting state variables within the PIV Card. For example, the criteria for successful

execution of the SELECT command involve the following:

+ The Response Status Code returned is”90 00”.

+ The application property template is returned with the right format and content.

+ The “PIV card application” is the value of “currently selected application” (state variable)

on the card.

The card command interface test suite includes conformance tests for the following PIV card

application commands:

+ Data access commands

 SELECT

 GET DATA

+ Card authentication commands

 VERIFY

 CHANGE REFERENCE DATA

 RESET RETRY COUNTER

 GENERAL AUTHENTICATE

+ Credential initialization and administration commands

 PUT DATA

Page 11

Special Publication 800-85A-1 PIV Card Application & Middleware Interface Test Guidelines

4. Derived Test Requirements

DTRs show the type of tests required based on the specifications in SP 800-73-2. These

specifications cover expected command behavior (in the case of interface specification), data

object representation (in the case of PIV data model) and data contents (in the case of PIV

authentication use cases).

Each DTR consists of the following:

+ Actual condition statements taken/derived from the SP 800-73-2 specification – these

include conditions for successful command execution for each command as well as

exception behaviors explicitly called out through ‘shall’ statements in SP 800-73-2.

Those exception behaviors that are implicit in SP 800-73-2 through listing of error codes

associated with each command are tested only through Test Assertions (Appendices B, C

and D) and are not part of the DTR condition statements. The condition statements are

identified by codes starting with ‘AS’ followed by a running sequence that denotes the

section in this document where they occur.

+ Required Vendor Information – these include information that the vendors are mandated

to provide in their documentation. The Required Vendor Information is identified by

codes starting with ‘VE’ followed by a running sequence that denotes the section in this

document where they occur.

+ Required Test Procedures – these are actions that the tester has to perform in order to

satisfy the requirements stated in actual condition statements. These include verifying the

information mandated in the “Required Vendor Information” for the condition as well as

performing software-based tests. It must be mentioned; however, that some of the

required test procedures will not call out explicitly for verification of information in the

associated “Required Vendor Information”. In these instances it is implicitly assumed

that such information is provided by the vendor and verified by the tester. The Required

Test Procedures are identified by codes starting with TE followed by a running sequence

that denotes the section in this document where they occur.

Validations of some DTRs are not covered by the test assertions provided in this document.

These DTRs require compliance of the component with an external specification or standard

such as ISO/IEC 7816 or ISO/IEC 14443. No required test procedures are provided for these

DTRs, and a note is added to indicate that “this assertion is externally tested.” The tester checks

the vendor documentation for claimed compliance with such requirement or the presence of an

external test/compliance certificate obtained from the related standards testing body, when

applicable.

Some DTRs cannot be validated through the test tools provided in this document. For example,

the test tool cannot access the asymmetric private keys generated and stored on the card.

Therefore, a note is added to indicate that “this assertion is not separately tested” for these DTRs.

The same note is added for DTRs that make general statements on the nature of the PIV Card

and are validated as a result of the validation of many other DTRs. For example, the statement

“each command that appears on the card command interface shall be implemented by a card

application that is resident in the Integrated Circuit Card (ICC)” is validated through the entire

card command interface test and does not require an individual test assertion.

Page 14

Special Publication 800-85A-1 PIV Card Application & Middleware Interface Test Guidelines

5. Test Assertions

Test assertions are statements of behavior, action, or condition that can be measured or tested.

They provide the procedures to guide the tester in executing and managing the test. They

include the purpose of the test, starting conditions and prerequisites, success criteria, and post-

test conditions, when applicable. A list of test assertions can be seen in Appendices B and C.

The following three sets of test assertions are included in this document:

+ PIV client API test assertions (see Section 3.1 for overview)

+ PIV card command interface test assertions (per Section 3.2.1)

+ PIV data objects accessibility and storage test assertions (per Section 3.2.2)

An overview of each of the above classes of test assertions is given in Sections 5.2 through 5.4.

5.1 Mapping from Test Categories to Test Assertions

All the DTRs in Appendix A conceptually come under one of the two broad categories of tests

stated in Section 3 i..e.., PIV middleware tests and PIV card application tests. Similarly, each

test assertion makes specific references to the related sections in SP 800-73-2 or the related

DTRs. However, overall there is many-to-many mapping from the test suite elements

(individual tests) under each of these two broad categories of tests to the DTRs (i.e., one test can

map to many DTRs and one DTR can map to many tests). A similar type of relationship exists

between DTRs and test assertions. To narrow the search space for cross references, Table 5-1

presents a cross-referencing guide showing the relevant DTR sections (with the section in SP

800-73-2 document from which they were derived) and test assertion sections with respect to test

classes in the two broad categories of tests.

Category/Classes of Test DTR Section(s) Test Assertion Section(s)

(1) PIV Middleware Tests (Section

3.1)

A.4 PIV End-Point Client API (Part 3

of SP 800-73-2)

Appendix B—PIV Client API Test

Assertions

(2a) PIV Card Application Tests—

PIV Card Application Card

Command Interface Tests (Section

3.2.1)

(1) A.1 End-Point Concepts and

Constructs (Ch 2, Part 2, of SP 800-

73-2)

(2) A.5 End-Point PIV Card

Application Card Command Interface

(Ch 3, Part 2 of SP 800-73-2)

Appendix C—PIV Card Command

Interface Test Assertions

(2b) PIV Card Application Tests—

PIV Data Object s Accessibility and

Storage Tests (Section 3.2.2)

(1) A.2 End-Point PIV Data Objects

Representation (Ch 4, Part 1 of SP

800-73-2)

(2) A.3 End-Point Data Types and

Their Representation (Ch 5, Part 1

of SP 800-73-2, and Part 2 of SP

800-73-2)

Appendix C—PIV Data Objects

Accessibility and Storage Test

Assertions

Table 5-1. Cross-referencing Guide

Page 15

剩余148页未读，继续阅读

艾米的爸爸

粉丝: 799
资源: 314

NIST SP800-85A-1：PIV组件测试指南

NIST SP800-177r1.pdf

NIST SP800-88_rev1.pdf

NIST SP800-85A-2-final.pdf

NIST SP800-79-1.pdf

NIST SP800-175Br1-draft.pdf

NIST SP800-133r1-draft.pdf

NIST SP800-38Gr1-draft.pdf

NIST SP800-66-Revision1.pdf

NIST SP800-107 rev1.pdf

NIST SP800-67 Rev1.pdf

最新资源